3dbrew

3DS System Flaws: Difference between revisions

← Older editNewer edit →
Tags: Mobile edit Mobile web edit
CTRSDK heap code still doesn't verify neighbouring chunks when coalescing
Line 1,026: Line 1,026:
Besides CTRSDK memchunk-headers, there are no addresses stored under this sharedmem.
Besides CTRSDK memchunk-headers, there are no addresses stored under this sharedmem.
| ROP under NWM-module.
| ROP under NWM-module.
| [[11.4.0-37|11.4.0-X]]
| None (need to check, but CTRSDK heap code is vulnerable)
| [[9.0.0-20|9.0.0-X]]
| [[9.0.0-20|9.0.0-X]]
| April 10, 2016
| April 10, 2016
Line 1,075: Line 1,075:
This is exploited by [https://github.com/yellows8/ctr-httpwn/ctr-httpwn ctr-httpwn].
This is exploited by [https://github.com/yellows8/ctr-httpwn/ctr-httpwn ctr-httpwn].
| ROP under HTTP sysmdule.
| ROP under HTTP sysmdule.
| [[11.4.0-37|11.4.0-X]]
| None
| [[9.6.0-24|9.6.0-X]] (Latest sysmodule version as of [[10.7.0-32|10.7.0-32]])
| [[11.13.0-45|11.13.0-X]]
| Late 2015
| Late 2015
| March 22, 2016
| March 22, 2016
Retrieved from "https://www.3dbrew.org/wiki/3DS_System_Flaws"